Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6d/09560d-2923-4349-af5c-a583f17082aa/1/SdpO3TPXY9bKHcAYWSPwPJH9Qj4.roa
File: SdpO3TPXY9bKHcAYWSPwPJH9Qj4.roa (raw, json)
Hash identifier: n6k5ZFXN8yy46KuLGEtx8ezCTrrZw3IycouMoLGs8hE=
Subject key identifier: 49:DA:4E:DD:33:D7:63:D6:CA:1D:C0:18:59:23:F0:3C:91:FD:42:3E
Certificate issuer: /CN=3ae51ad5040f4503afc71dc50189c4a964d1cd40
Certificate serial: 09AE2C1F
Authority key identifier: 3A:E5:1A:D5:04:0F:45:03:AF:C7:1D:C5:01:89:C4:A9:64:D1:CD:40
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OuUa1QQPRQOvxx3FAYnEqWTRzUA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6d/09560d-2923-4349-af5c-a583f17082aa/1/SdpO3TPXY9bKHcAYWSPwPJH9Qj4.roa
Signing time: Sat 01 Jan 2022 14:59:37 +0000
ROA not before: Sat 01 Jan 2022 14:59:37 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 206150
IP address blocks: 139.28.27.0/24 maxlen: 24
139.28.26.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 162409503 (0x9ae2c1f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3ae51ad5040f4503afc71dc50189c4a964d1cd40
Validity
Not Before: Jan 1 14:59:37 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=49da4edd33d763d6ca1dc0185923f03c91fd423e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:81:f8:ef:9e:05:1f:90:92:18:61:94:95:d5:
87:b8:09:99:cf:17:1e:58:6b:98:7d:b0:b2:33:0c:
57:72:d9:80:9e:f3:dd:39:14:1e:28:67:67:3b:32:
77:d4:f8:e3:02:48:f0:e5:46:77:14:a9:94:35:0b:
91:7e:ed:18:8e:c5:3b:5e:dd:c2:80:f0:5d:8c:2d:
8f:ba:33:81:95:4e:94:3a:a0:cb:5f:33:14:c2:e7:
65:d9:c4:40:6a:cc:d7:b3:ec:c2:c6:6d:bd:2d:41:
92:6b:dd:0d:dc:e8:01:10:91:41:80:1b:33:e8:57:
93:f8:ad:64:2e:1b:1f:e6:8f:eb:05:37:7f:36:2a:
07:ce:98:54:01:be:47:37:ec:30:fa:51:f3:5e:31:
a5:a5:91:86:41:b9:0e:d1:eb:e7:81:b0:a8:2f:9c:
63:b9:10:cf:ae:7e:90:88:06:68:47:20:89:b4:ed:
f8:e9:00:bd:c3:a5:e5:7a:6a:0f:db:55:3a:79:fc:
5b:64:e8:45:70:67:a0:c5:68:1f:f1:61:d3:93:7d:
85:16:da:e4:1c:5d:71:7d:9a:c9:f0:af:ff:70:00:
78:c7:84:42:88:f0:bd:08:e7:73:e8:15:41:30:60:
c1:c3:09:2d:53:ae:68:fc:3c:b3:3d:53:c4:bb:32:
8b:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
49:DA:4E:DD:33:D7:63:D6:CA:1D:C0:18:59:23:F0:3C:91:FD:42:3E
X509v3 Authority Key Identifier:
keyid:3A:E5:1A:D5:04:0F:45:03:AF:C7:1D:C5:01:89:C4:A9:64:D1:CD:40
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OuUa1QQPRQOvxx3FAYnEqWTRzUA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/09560d-2923-4349-af5c-a583f17082aa/1/SdpO3TPXY9bKHcAYWSPwPJH9Qj4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/09560d-2923-4349-af5c-a583f17082aa/1/OuUa1QQPRQOvxx3FAYnEqWTRzUA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
139.28.26.0/23
Signature Algorithm: sha256WithRSAEncryption
08:12:29:12:5e:b1:66:09:c7:48:bb:1e:53:e6:fa:9f:14:2a:
41:5f:4c:4b:4e:49:e5:a0:06:ac:ef:18:22:24:97:ee:6c:ee:
99:28:7a:05:7c:93:73:4f:16:77:81:b0:0f:b5:b3:07:20:49:
43:7d:64:44:f5:19:4d:20:e5:cd:26:b9:a7:33:bf:87:70:5a:
6a:ca:5d:5b:51:05:b1:70:11:1a:90:14:15:22:b8:9e:cd:8d:
5f:17:4f:b1:57:e7:b3:e6:9e:f0:5b:77:4b:df:8d:44:b0:11:
f6:a4:c7:13:6d:51:a4:37:41:3b:ff:be:59:3d:a4:39:50:a5:
67:f0:12:40:5c:59:c8:f5:e6:e2:81:90:fa:5b:f8:f2:36:43:
4d:e0:d0:3c:68:01:f0:72:c0:b9:71:bc:5b:8d:62:b2:91:c2:
84:58:4b:dd:77:b5:00:55:ba:c7:a8:3f:28:c1:f7:e8:6d:40:
4b:db:aa:5e:95:31:da:41:51:fb:ed:2f:91:d3:9c:5a:b4:f7:
34:c9:6d:34:0e:a1:ed:53:96:be:a7:c9:f5:8e:73:8b:e3:38:
9d:88:fa:6a:25:80:a9:ec:0e:5b:df:cf:61:60:7f:70:fe:85:
e5:ff:59:1e:6f:db:87:ff:58:85:2e:7e:86:52:9f:61:14:1f:
a2:b8:ce:b2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 02:21:01 2025 by rpki-client